Vulnerabilities > Alex Heiphetz Group
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-01-09 | CVE-2000-1092 | Directory Traversal vulnerability in Alex Heiphetz Group Ezshopper 2.0/3.0 loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter. | 5.0 |
2000-02-27 | CVE-2000-0188 | Remote Command Execution vulnerability in Alex Heiphetz Group Ezshopper 3.0 EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. | 7.5 |
2000-02-27 | CVE-2000-0187 | Remote Command Execution vulnerability in Alex Heiphetz Group Ezshopper 3.0 EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. | 7.5 |